Tech Support Guy banner
  • IMPORTANT: Only authorized members may reply to threads in this forum due to the complexity of the malware removal process. Authorized members include Malware Specialists and Trainees, Administrators, Moderators, and Trusted Advisors. Regular members are not permitted to reply, and any such posts will be deleted without notice or further explanation. Notice
Status
Not open for further replies.
1 - 10 of 10 Posts

·
Registered
Joined
·
6 Posts
Discussion Starter · #1 ·
On my AdAware SE Program in Settings under Alternate Data Stream, two of the choices there are x'd out and there is a box underneath that has: CA_INOCULATEIT in it. It is grayed-out, so I can't tweak or delete it. I'm not sure what it is. Is this a virus or should this be in there?

I have Windows ME Operating System. Does anyone know?

Thanks!

Debi
 

·
Administrator
Joined
·
124,144 Posts
Debi Harris said:
On my AdAware SE Program in Settings under Alternate Data Stream, two of the choices there are x'd out and there is a box underneath that has: CA_INOCULATEIT in it. It is grayed-out, so I can't tweak or delete it. I'm not sure what it is. Is this a virus or should this be in there?

I have Windows ME Operating System. Does anyone know?

Thanks!

Debi
If you click on the X's a green tick will appear and they will no longer by grayed out.
 

·
Gone but Never Forgotten
Joined
·
17,966 Posts

·
Registered
Joined
·
6 Posts
Discussion Starter · #4 ·
Thanks! I know I can click on the x's and they'll turn into a tick mark, but I'm not sure if they should be checked?? and....I'm still not sure what CA_INOCULATEIT is. If those boxes are ticked, it is saying not to check this CA...etc. site. That sounds like it could be a virus or something.

Are you saying that you have those ticked and do you also have this CA whatever in the box below them?
 

·
Registered
Joined
·
47,742 Posts
its your antivirus i use it.....
 

·
Registered
Joined
·
6 Posts
Discussion Starter · #6 ·
Really? I use Norton Antivirus and it's one of those files? Well thank you for the input. I just wanted to make sure I wasn't allowing something that shouldn't be there. Have a nice evening!
 

·
Administrator
Joined
·
124,144 Posts
While I don't claim to understand all of the workings of Alternate Data Streams (ADS), I have researched and found that there is a vulnerability there that can potentially give hackers a way to hide root kits or hacker tools on a breached system that can be executed without being detected.

Some valid programs also use ADS and CAInnoculateIt is one (it's a program from Computer Associates eTrust) so Ad-Aware has put the option there of not flagging it, if you so choose, as it's valid and not a virus.

If you check that option, then even if you have that program, it won't get flagged. If you don't check it, then it will. I don't think you have that program so it really doesn't matter which setting you choose for that one.

Hope this helps.

:)
 
1 - 10 of 10 Posts
Status
Not open for further replies.
Top